VMRay Analyzer Report
Analysis Information
Creation Time2016-10-13 16:42 (UTC+2)
VM Analysis Duration Time00:02:25
Execution SuccessfulTrue
Sample FilenameExplorer Pro.exe
Command Line ParametersFalse
PrescriptFalse
Number of Processes2
Termination ReasonTimeout
Download Function Logfile Generic Logfile PCAP STIX/CybOX
RemarksControl flow obfuscation detected
VTI Information
VTI Score
91 / 100
VTI Database Version2.2
VTI Rule Match Count21
VTI Rule TypeDefault (PE, ...)
Tags
The tags feature is only available in the fully licensed version of VMRay Analyzer.
Screenshots
Screenshot Screenshot Screenshot
Monitored Processes
Process Graph


IDPIDMonitor ReasonImage NameCommand LineOrigin ID
#10x514Analysis Targetexplorer pro.exe"C:\Users\DSsDPMx042\Desktop\Explorer Pro.exe"
#20x578Child Processiexplore.exe"C:\program files\internet explorer\IEXPLORE.EXE"#1
Sample Information
ID#625263
MD5 Hash Valuebe66787e9a1933b319e3694b4c348e38
SHA1 Hash Value05ed9e77fc98cfce1bb9e4acad1b95f4167c5129
SHA256 Hash Valuece7ddc6318d4e76ef0ad3d9b1a8f8ad90eb77a0bf53ab49e8440a0fb0b67aa39
FilenameExplorer Pro.exe
File Size3.19 MB (3340288 bytes)
File TypeWindows Exe (x86-32)
Analyzer and Virtual Machine Information
Analyzer Version1.11.0
Analyzer Build Date2016-09-19 10:58 (UTC+2)
VM Namewin7_32_sp1
VM DescriptionWindows 7 (SP1, 32-bit)
VM Architecturex86 32-bit PAE
VM OSWindows 7
VM Kernel Version6.1.7601.17514 (684da42a-30cc-450f-81c5-35b4d18944b1)
Function Logfile
Download-Icon
Exit-Icon

This feature requires an online-connection to the VMRay backend.

An offline version with limited functionality is also provided.
The offline version is supported only in Mozilla Firefox with deactivated setting "security.fileuri.strict_origin_policy". 
































Screenshot



Expand-Icon


Exit-Icon






icon_left




icon_left








image